Apache Software Foundation Apache Portable Runtime Utility library (aka APR-util) 1.3.7

CPE Details

Apache Software Foundation Apache Portable Runtime Utility library (aka APR-util) 1.3.7
apache
apr-util
1.3.7
2009-08-06
15h44 +00:00
2010-10-05
21h00 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:apache:apr-util:1.3.7:*:*:*:*:*:*:*

Informations

Vendor

apache

Product

apr-util

Version

1.3.7

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2010-1623 2010-10-04 18h00 +00:00 Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) before 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors related to the destruction of an APR bucket.
5
CVE-2009-2412 2009-08-06 13h00 +00:00 Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Portable Utility library (aka APR-util) 0.9.x and 1.3.x allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger crafted calls to the (1) allocator_alloc or (2) apr_palloc function in memory/unix/apr_pools.c in APR; or crafted calls to the (3) apr_rmm_malloc, (4) apr_rmm_calloc, or (5) apr_rmm_realloc function in misc/apr_rmm.c in APR-util; leading to buffer overflows. NOTE: some of these details are obtained from third party information.
10